Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
1,998
Maven
5,000+
npm
3,710
NuGet
661
pip
3,364
Pub
11
RubyGems
885
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+

255,762 advisories

Loading
A potential security vulnerability has been identified in the HPE NonStop DISK UTIL (T9208)... Moderate Unreviewed
CVE-2024-51766 was published Nov 22, 2024
IBM PowerVM Platform KeyStore (IBM PowerVM Hypervisor FW950.00 through FW950.90, FW1030.00... Moderate Unreviewed
CVE-2024-41781 was published Nov 22, 2024
IBM Engineering Systems Design Rhapsody - Model Manager 7.0.2 and 7.0.3 could allow a remote... Critical Unreviewed
CVE-2024-41779 was published Nov 22, 2024
Possible out of bound access in audio module due to lack of validation of user provided input. Moderate Unreviewed
CVE-2021-30299 was published Nov 22, 2024
Certain unprivileged processes are able to perform IOCTL calls. Moderate Unreviewed
CVE-2017-9711 was published Nov 22, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Moderate Unreviewed
CVE-2024-7882 was published Nov 22, 2024
The Sky Addons for Elementor (Free Templates Library, Live Copy, Animations, Post Grid, Post... High Unreviewed
CVE-2024-11104 was published Nov 22, 2024
The Control horas plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2024-11381 was published Nov 22, 2024
The GEO my WP WordPress plugin before 4.5, gmw-premium-settings WordPress plugin before 3.1 does... Unknown Unreviewed
CVE-2024-9422 was published Nov 22, 2024
The Easy Twitter Feed – Twitter feeds plugin for WP plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-10666 was published Nov 22, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-7837 was published Nov 22, 2024
The Premium Packages – Sell Digital Products Securely plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-11225 was published Nov 22, 2024
The MailMunch – Grow your Email List plugin for WordPress is vulnerable to Reflected Cross-Site... Moderate Unreviewed
CVE-2024-8735 was published Nov 22, 2024
The Sky Addons for Elementor (Free Templates Library, Live Copy, Animations, Post Grid, Post... High Unreviewed
CVE-2024-11601 was published Nov 22, 2024
The Ultimate YouTube Video & Shorts Player With Vimeo plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-11355 was published Nov 22, 2024
The Gallery Blocks with Lightbox. Image Gallery, (HTML5 video , YouTube, Vimeo) Video Gallery and... Moderate Unreviewed
CVE-2024-10034 was published Nov 22, 2024
Insufficiently protected credentials issue exists in AIPHONE IX SYSTEM and IXG SYSTEM. A network... Moderate Unreviewed
CVE-2024-39290 was published Nov 22, 2024
Use of hard-coded cryptographic key issue exists in AIPHONE IX SYSTEM, IXG SYSTEM, and System... Moderate Unreviewed
CVE-2024-45837 was published Nov 22, 2024
AIPHONE IXG SYSTEM IXG-2C7 firmware Ver.2.03 and earlier and IXG-2C7-L firmware Ver.2.03 and... Moderate Unreviewed
CVE-2024-47142 was published Nov 22, 2024
Dell Edge Gateway 5200 (Coffee Lake S), versions prior to 12.0.94.2380, contains an Exposure of... Moderate Unreviewed
CVE-2024-38296 was published Nov 22, 2024
The Media File Rename, Find Unused File, Add Alt text, Caption, Desc For Image SEO WordPress... Moderate Unreviewed
CVE-2024-10482 was published Nov 22, 2024
Stored Cross-Site Scripting in the Manager component of Wowza Streaming Engine below 4.9.1 allows... High Unreviewed
CVE-2024-52053 was published Nov 22, 2024
Path Traversal in the Manager component of Wowza Streaming Engine below 4.9.1 allows an... Moderate Unreviewed
CVE-2024-52054 was published Nov 22, 2024
Path Traversal in the Manager component of Wowza Streaming Engine below 4.9.1 allows an... Moderate Unreviewed
CVE-2024-52056 was published Nov 22, 2024
Wowza Streaming Engine below 4.9.1 permits an authenticated Streaming Engine Manager... Critical Unreviewed
CVE-2024-52052 was published Nov 22, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database